Security Engineer, Product Infrastructure

We are the security engineering team, skilled in cybersecurity, cloud security, application security, and regulatory compliance. Our global distribution allows us to leverage unique experiences and skillsets to build and operate security services that safeguard our platform. We prioritize a proactive approach to prevent security issues and stay ahead of potential threats, ensuring the continuous protection of our services.

The Security Engineer, Product Infrastructure is an early-career role for engineers who want to deepen their experience in cloud and product security while working hands-on with tools like Wiz and our broader security stack. You’ll help monitor and respond to security findings across our AWS and Kubernetes environments, partner with product and platform engineering teams to drive remediation, and support our vulnerability management program. You’ll participate in a shared on-call rotation with guidance from senior team members to support production security incidents and keep our controls reliable and effective.

In this job, you'll:

• Respond to security tickets and alerts: investigate issues, gather context from logs and dashboards, and collaborate with Security Engineering and product/platform teams on next steps.

• Partner with product, platform, and infrastructure teams to understand security findings, explain risk in clear terms, and support them in implementing secure configurations across AWS/GCP, Kubernetes clusters, and shared services.

• Utilize core security tools to protect critical product cloud infrastructure (for example Wiz, CrowdStrike, SonarCloud, Okta, and related platforms)

• Participate in an on-call rotation (with onboarding and shadowing) for security incidents and critical security tooling issues, providing structured triage, documentation, and communication until resolution or hand-off.

• Contribute to security reviews for new services and major infrastructure changes, helping identify misconfigurations and recommending practical mitigations that fit team workflows.

• Learn to read and make small, well-reviewed changes to Infrastructure-as-Code (Terraform) and Kubernetes configurations to help embed guardrails, hardening standards, and security checks into our infrastructure and CI/CD pipelines.

• Collaborate with partners across Security, IT, Platform Engineering, Legal, Risk, and Investigations, building strong working relationships and practicing clear, empathetic communication.

We’re looking for candidates who have:

• 2+ years of experience in security operations, security engineering, or a closely related infrastructure or cloud role (for example SecOps analyst, junior security engineer, or cloud/DevOps engineer with strong security exposure).

• Hands-on experience with at least one security tool used in modern cloud or product environments (Wiz, Orca, CrowdStrike, SonarCloud, Upwind, or similar), and an interest in becoming the go-to person for issue resolution.

• Scripting experience in Python or Go (or similar) to automate repetitive tasks, integrate tools, or build small utilities that make the team more efficient.

• Prior participation in an on-call rotation for production systems or security incidents, even in a shadowing or secondary role.

• Experience working with tickets, incidents, or production issues, and following a structured process to investigate, document, and resolve or escalate them appropriately.

• Strong communication skills, with the ability to explain what you’re seeing and what you recommend as a next step to both technical and non-technical audiences.

• A learning mindset and growth orientation: you’re comfortable asking questions, seeking feedback, and taking ownership.

Nice to have experience:

• Exposure to Infrastructure-as-Code (Terraform) and Kubernetes concepts — you don’t need to be an expert yet, but you should be comfortable learning how infrastructure and security controls are expressed as code.

• Experience contributing to a Vulnerability Management Program or similar process, such as helping track security findings, prepare reports, or coordinate remediation work with engineering teams.

• Familiarity with security frameworks (such as SOC 2 or NIST) or regulated environments, and how they influence security controls and documentation.

• Interest in or exposure to crypto infrastructure, and a desire to grow your skills at the intersection of security, blockchain, and AI.

Technologies we use and teach:

• Cloud and containers: AWS, GCP, Kubernetes (EKS/GKE)

• Infrastructure-as-Code: Terraform

• Security tooling: Wiz, CrowdStrike, Cloudflare

• CI/CD and source control: GitHub, GitHub Actions, Jenkins, and related build/deploy tooling

• Languages and scripting: Python, Go, Java, Javascript

About Chainalysis

Blockchain technology is powering a growing wave of innovation. Businesses and governments around the world are using blockchains to make banking more efficient, connect with their customers, and investigate criminal cases. As adoption of blockchain technology grows, more and more organizations seek access to all this ecosystem has to offer. That’s where Chainalysis comes in. We provide complete knowledge of what’s happening on blockchains through our data, services, and solutions. With Chainalysis, organizations can navigate blockchains safely and with confidence.

You belong here. 

At Chainalysis, we believe that diversity of experience and thought makes us stronger. With both customers and employees around the world, we are committed to ensuring our team reflects the unique communities around us. We’re ensuring we keep learning by committing to continually revisit and reevaluate our diversity culture.

We encourage applicants across any race, ethnicity, gender/gender expression, age, spirituality, ability, experience and more. If you need any accommodations to make our interview process more accessible to you due to a disability, don't hesitate to let us know. You can learn more here. We can’t wait to meet you.